401trg / utilitiesLinks
This repository contains tools used by 401trg.
☆20Updated 4 years ago
Alternatives and similar repositories for utilities
Users that are interested in utilities are comparing it to the libraries listed below
Sorting:
- Some rules, scripts of some use to us☆9Updated 9 months ago
- ☆41Updated 2 years ago
- Remote Desktop Client Fingerprint script for Zeek. Based off of https://github.com/0x4D31/fatt☆40Updated 2 years ago
- Royal APT - APT15 - Related Information from NCC Group Cyber Defense Operations Research☆53Updated 7 years ago
- A collection of Indicators of Compromise (IoCs), most aligning with samples derived from the signatures in the YARA-Signatures repo☆30Updated 5 years ago
- Detect kerberos attacks in pcap files☆29Updated 9 years ago
- This repository contains all the config files and scripts used for our Open Source Endpoint monitoring project.☆34Updated 6 years ago
- IDS Utility Belt For Automating/Testing Various Things☆30Updated 4 years ago
- Python parser for Red Canary's Atomic Red Team Yamls☆27Updated 6 years ago
- A collection of Python utilities for use in scripts related to working with "indicators of compromise" (IOCs).☆17Updated 6 years ago
- Bro PCAP Processing and Tagging API☆28Updated 7 years ago
- THOR MITRE ATT&CK Framework Coverage☆24Updated 5 years ago
- Plugins to add funtionality to ProcDOT. http://www.procdot.com☆23Updated last year
- Bro integration with osquery☆15Updated 2 years ago
- Python script to automatically create sigma rules from The hive observables☆25Updated 6 years ago
- Sandbox feature upgrade with the help of wrapped samples☆76Updated 7 years ago
- YETI (Your Everyday Threat Intelligence) Integration to Elastic Stack☆16Updated 4 years ago
- Checks observables/ioc in TheHive/Cortex against the MISP warningslists☆14Updated 7 years ago
- hassh-utils: Nmap NSE Script and Docker image for HASSH - the SSH client/server fingerprinting method (https://github.com/salesforce/hass…☆58Updated 10 months ago
- Presentation materials for talks I've given.☆20Updated 5 years ago
- Fast Evidence Collector Toolkit is an incident response toolkit to collect evidences on a suspicious windows computer☆42Updated 5 years ago
- Detect Phishing with Bro IDS☆18Updated 8 years ago
- Security Onion Elastic Stack☆46Updated 4 years ago
- ☆12Updated 7 years ago
- Public rules and samples for various automations through LimaCharlie.io☆13Updated 3 years ago
- Parses Java Cache IDX files☆39Updated 7 years ago
- A collection of threat intelligence data such as IOC, Yara and Snort/Suricata Rules etc.☆10Updated 5 years ago
- Crack your macros like the math pros.☆33Updated 8 years ago
- ☆13Updated 5 years ago
- Python wrapper for the Mitre ATT&CK framework API☆30Updated 7 years ago